This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.mft File: hkEGVA8wqdzfjvm-cv_vi9inLlw.mft (raw, json) Hash identifier: RZ2+P0dvON1JwQFqsnlrEXO1Aq46/omwjJE0Ru2iGKk= Subject key identifier: BF:C9:E1:A6:94:95:F8:21:3D:DC:4D:D8:B7:FB:7A:55:7A:40:4F:82 Authority key identifier: 86:41:06:54:0F:30:A9:DC:DF:8E:F9:BE:72:FF:EF:8B:D8:A7:2E:5C Certificate issuer: /CN=864106540f30a9dcdf8ef9be72ffef8bd8a72e5c Certificate serial: 019B5AF607DB446C23C28C64DE42E66916B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkEGVA8wqdzfjvm-cv_vi9inLlw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.mft Manifest number: 179B Signing time: Fri 26 Dec 2025 14:00:31 +0000 Manifest this update: Fri 26 Dec 2025 14:00:31 +0000 Manifest next update: Sat 27 Dec 2025 14:00:31 +0000 Files and hashes: 1: XPrFj5zrogqrQA0ZGMw9Cj_3tIM.roa (hash: y5bDj30kHbVlnej3Qo9ZyWbBqUGtip3DeFT5c1pzf8I=) 2: hkEGVA8wqdzfjvm-cv_vi9inLlw.crl (hash: 7momv7Lq5KgpeGgUnU2H7zuoEjEzL0rz4f7ZK863wAg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.crl rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.mft rsync://rpki.ripe.net/repository/DEFAULT/hkEGVA8wqdzfjvm-cv_vi9inLlw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:f6:07:db:44:6c:23:c2:8c:64:de:42:e6:69:16:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=864106540f30a9dcdf8ef9be72ffef8bd8a72e5c Validity Not Before: Dec 26 14:00:31 2025 GMT Not After : Dec 27 14:00:31 2025 GMT Subject: CN=bfc9e1a69495f8213ddc4dd8b7fb7a557a404f82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:9f:b8:9c:4c:7e:db:92:88:59:7c:58:02:69: 65:a3:9f:a0:cd:63:9c:9c:36:2a:4a:4c:3b:fd:de: 88:7d:7e:2f:5f:c3:4b:58:27:15:9f:1a:37:73:7e: e7:d7:b9:d8:e2:34:08:9e:b6:a0:32:60:1d:a2:00: 69:25:d8:2f:0c:bd:96:ea:d1:1f:eb:68:58:fe:d9: 57:de:62:cf:1e:19:ac:09:2f:23:37:aa:c7:24:40: 88:fc:1a:65:ae:d8:d2:18:2c:f4:8d:2f:05:33:ef: e8:36:e7:d2:f6:b0:02:e0:4f:f4:6f:e1:4b:56:19: 29:70:28:ba:4d:87:d6:70:a0:15:33:1f:f0:96:44: 29:40:0b:d9:88:77:5e:5f:a5:91:e7:00:a6:6a:fb: 79:c3:d7:05:75:a5:61:3f:15:80:a5:96:72:19:7c: 89:89:1c:17:93:95:8c:28:49:95:a4:26:02:06:da: 72:f7:d3:6f:ed:51:29:f0:51:5e:75:4c:d5:73:ff: fe:b1:89:2b:bf:60:8c:64:67:5e:18:87:e0:65:11: 42:5f:1e:58:ae:ff:d3:2f:35:e8:d0:4e:3e:ec:85: 4d:bd:ec:1a:25:ca:be:f1:79:cb:2d:73:34:d3:68: 27:b6:0a:ad:0e:7b:e7:5e:8b:6d:c3:eb:0b:cf:12: f0:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C9:E1:A6:94:95:F8:21:3D:DC:4D:D8:B7:FB:7A:55:7A:40:4F:82 X509v3 Authority Key Identifier: keyid:86:41:06:54:0F:30:A9:DC:DF:8E:F9:BE:72:FF:EF:8B:D8:A7:2E:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkEGVA8wqdzfjvm-cv_vi9inLlw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:4c:e7:83:f6:9d:64:41:f4:ab:50:e8:5b:89:d7:3b:30:7d: 09:ff:72:c9:66:92:a9:e3:c1:65:7a:ac:60:e7:9d:fc:9b:a1: 90:31:ba:ba:f7:d4:88:4d:66:c7:0f:ad:6a:f7:a1:12:6b:a5: ee:39:84:b4:70:f9:80:27:30:c6:52:cd:e8:e8:65:46:b6:e1: 8b:c6:08:e8:a7:73:55:9f:83:5d:3f:70:3b:e6:c9:b8:e0:a2: 97:e1:d9:f2:2c:42:e2:d5:e6:7d:78:fa:21:ac:d9:ac:51:d0: 90:fd:8e:33:ee:59:25:d0:f3:d2:63:b8:48:3f:87:3a:80:0f: 79:32:f7:05:9e:b7:3c:82:96:26:3b:77:65:f0:8b:77:8c:d9: b6:cf:49:0c:58:78:28:01:b3:ed:3b:56:30:0b:80:60:b6:88: 0a:17:46:63:fd:ea:82:d9:0b:c8:9b:cc:c4:f4:78:1e:1c:0b: bd:c8:0d:5f:91:5c:dc:74:ae:84:6a:cb:17:65:1e:7c:d5:7f: ef:76:f6:af:be:3b:88:0e:72:1e:fd:4f:c5:dd:8a:f3:e2:8b: 6f:f7:1b:72:af:24:fe:07:7c:06:95:67:c0:8b:cd:dd:39:f3: ca:e4:e0:d4:0b:05:02:1a:b1:ec:ee:fd:a4:d9:b9:94:26:31: 32:ad:30:6f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZta9gfbRGwjwoxk3kLmaRayMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2NDEwNjU0MGYzMGE5ZGNkZjhlZjliZTcyZmZlZjhiZDhh NzJlNWMwHhcNMjUxMjI2MTQwMDMxWhcNMjUxMjI3MTQwMDMxWjAzMTEwLwYDVQQD EyhiZmM5ZTFhNjk0OTVmODIxM2RkYzRkZDhiN2ZiN2E1NTdhNDA0ZjgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA55+4nEx+25KIWXxYAmllo5+gzWOc nDYqSkw7/d6IfX4vX8NLWCcVnxo3c37n17nY4jQInragMmAdogBpJdgvDL2W6tEf 62hY/tlX3mLPHhmsCS8jN6rHJECI/BplrtjSGCz0jS8FM+/oNufS9rAC4E/0b+FL VhkpcCi6TYfWcKAVMx/wlkQpQAvZiHdeX6WR5wCmavt5w9cFdaVhPxWApZZyGXyJ iRwXk5WMKEmVpCYCBtpy99Nv7VEp8FFedUzVc//+sYkrv2CMZGdeGIfgZRFCXx5Y rv/TLzXo0E4+7IVNvewaJcq+8XnLLXM002gntgqtDnvnXottw+sLzxLw6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL/J4aaUlfghPdxN2Lf7elV6QE+CMB8GA1UdIwQY MBaAFIZBBlQPMKnc3475vnL/74vYpy5cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGtFR1ZBOHdxZHpmanZtLWN2X3ZpOWluTGx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8wYmU3ZjItNjM4ZC00ZjQ1LWI2OTct M2IzMThlNDcyNzZkLzEvaGtFR1ZBOHdxZHpmanZtLWN2X3ZpOWluTGx3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi8wYmU3ZjItNjM4ZC00ZjQ1LWI2OTctM2IzMThlNDcyNzZk LzEvaGtFR1ZBOHdxZHpmanZtLWN2X3ZpOWluTGx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIUzng/ad ZEH0q1DoW4nXOzB9Cf9yyWaSqePBZXqsYOed/JuhkDG6uvfUiE1mxw+tavehEmul 7jmEtHD5gCcwxlLN6OhlRrbhi8YI6KdzVZ+DXT9wO+bJuOCil+HZ8ixC4tXmfXj6 IazZrFHQkP2OM+5ZJdDz0mO4SD+HOoAPeTL3BZ63PIKWJjt3ZfCLd4zZts9JDFh4 KAGz7TtWMAuAYLaIChdGY/3qgtkLyJvMxPR4HhwLvcgNX5Fc3HSuhGrLF2UefNV/ 73b2r747iA5yHv1Pxd2K8+KLb/cbcq8k/gd8BpVnwIvN3TnzyuTg1AsFAhqx7O79 pNm5lCYxMq0wbw== -----END CERTIFICATE-----Generated at Fri Dec 26 16:03:42 2025 by rpki-client